If this is your first visit, be sure to
check out the Forum Rules by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Vulnerabilities reported by skipfish

Hello to everyone,
during these days I did a scan with skypfish on a web application created for the my company, and some errors have been reported
Query injection vector - https://xxx.com:4430/docs/0.vb/9-8
Shell injection vector - https://xxx.xxx.com:4430/docs/51.vb/`true`
I have reported the errors to the company that created the site, but them say that the application is secure, can you give me some advice?
It is possible that it is a fake of skipfish?